integrating mobile devices into e-business architectures ... · pdf fileas location for high...
TRANSCRIPT
IT-Symposium 2005
www.decus.de 1
IHPIm Technologiepark 2515236 Frankfurt (Oder)
Germany
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Integrating Mobile Devices into E-business Architectures: Open Issues and Potential
Solutions
Dr. Peter Langendörfer
Zoya Dyka, Frank Vater and Prof. Dr. Rolf Kraemer
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
New Institute and Cleanroom
IT-Symposium 2005
www.decus.de 2
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
IHP in a Nutshell
The Institute
• Founded in 1991; successor institution tothe former institute of the East German Academy with extensive experience in silicon microelectronics
• 200 employees from 16 countries
• Member of the Gottfried Wilhelm LeibnizSociety (WGL)
Mission
• Strengthen the competitive position of the German and European microelectronic and communication research
• Act as an innovation center, leading research results towards prototypes
• Enhance the attractiveness of the region as location for high technology
Facilities
• Complete innovation chain from materials to systems, including class-1 c.leanroom, 0.13 µm capable pilotline
Competencies
• Systems for wireless communication
• RF circuit design
• Extension of silicon CMOS technologies
• Materials for microelectronic technology
Strategy
• Create value through innovation
• Focus on solutions for wireless & broadband communications
• Development of forward-looking technologies and system-level prototypes
• Strategic partnerships
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Outline
• Motivation
• Communication Protection Means
• Application of Crypto Means
• Energy Issues
• Challenges Ahead
IT-Symposium 2005
www.decus.de 3
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Motivation: B2C
• Privacy ranked issue the # 1 Internet issue for consumers (Business Week survey 1998)
• 87% of experienced Internet users concerned about online privacy invasion (AT&T survey 1999)
• 59% want more federal privacy legislation (Business Week survey 2001)
• USD 15 billion could be lost by online retailers in 2001 because of consumers privacy concerns (Forrester research 2001)
• 34%of Internet users would start purchasing from online retailers if privacy was guaranteed (Forrester research 2001)
• 27% abandoned online purchases because of privacy concerns (Cyber Dialog survey 2001)
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Location-aware applications
• Location aware mall – Metro Future-Store Location aware shopping systemFinds location of products
• Ubiquitous Mall Mobile communication + sensors/RFID tags
Sensor node• tiny 1cm³• sensors, • battery,• CPU, • communication
Source: www.teco.edu
Registers what you buy???
IT-Symposium 2005
www.decus.de 4
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Location-awareness and privacy
+
=Bakerstreet
• Advertisement for new violin received on handheld• No personal information provided
• Bus taken to go home• Handheld is still running
+
• Tobacco for pipe bought; paid using handheld • No personal information provided
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Privacy Risks
• Spamming• Profiling (Value of a profile 15-50 € [ Source: F-Secure])• Physical location tracking• Identity theft• Surveillance
IT-Symposium 2005
www.decus.de 5
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Privacy Protection
• Do not give away any informationHighly secureNo use of online service possible
• Restrict dissemination of data to the very minimumUse secure communication channelsUse anonymous payment Negotiate about the data to be provided
• Make sure that information cannot be linkedUse anonymous paymentUse set of pseudonyms
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
CRM Database
CompanyServer
ResourceDatabase
Internet
Fire
wal
l
Business to Employee
IT-Symposium 2005
www.decus.de 6
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Motivation: B2B & B2E
• Loss of confidential information• Loss of image• Reduced productivity • Information flow analysis
Manufacturer Supplier A
Supplier B
Maintenance BOffer
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Communication Protection Means
IT-Symposium 2005
www.decus.de 7
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Cryptography: THE KEY enabler for Secure Communication
• Public key cryptography: provides means to realize: Digital signatures, Key exchangecomputational burden high
• Secret key cryptography: provides relatively efficient means to en-/decrypt bulk data transfer. computational burden low
• Anonymous communication: protection against message flow analysis: crowds, onion routing and mix netscomputational burden very high
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Mix Net Approach
• Send packets in a burst, not continuously
• Packets have the same size
• At least one mix is not attacking
Public Key Cryptography
• ci(...) public key of mixi
• di(...) private key of mixi
• Ai address of mixi
• ri random number
• M messages including address of final destination
Source: Prof. H. Federrath Uni Regensburg
IT-Symposium 2005
www.decus.de 8
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Application of Crypto Means
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Moneta: An anonymous payment scheme
Hidden Identity Approach requires heavy use of public key cryptography
Secure Communication requires heavy use of secret key cryptography
ID of client knownID of cash token unknown
Pseudonym of client knownID of cash token known
Pseudonym of client knownID of cash token knownID of service known
$
IT-Symposium 2005
www.decus.de 9
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Restricting Access to Position Information
Current position
Result
Find Object A
Client A Client A
me
Encrypteddata
transfer
Access
Control
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Energy Issues
IT-Symposium 2005
www.decus.de 10
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Vision: THE Wireless Engine
RFBBDLC
m-busi.Eng.
Prot.Eng.
PowerMang.
BB
Phy
DLC
TCP/IP
ApplTestEng.
Man
agem
ent P
lane
Non Functional Requirements
Basic Communication Processing
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Energy Consumption
Total up time in minutes using a WLAN connection
Total up time in minutes w/o wireless communication
with ciphering w/o ciphering with ciphering w/o ciphering Video application 125 142 222 256
• Up time of mobile devices is significantly decreased by
Wireless communication
Cryptographic means
IT-Symposium 2005
www.decus.de 11
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Crypto Hardware: Reducing the Energy Consumption
Performance of Specialized Hardware vs. Software Solutions
• Three orders of magnitude less in energy consumption
• Two orders of magnitude less in time consumption
Clock cycles Power consumptionSoftware 5 357 031 250 178500 mWsHardware 10 937 500 66 mWs
Secret Key Cryptography: Simulation Results for 100 Mbit data using AES;
Clock cycles Power consumptionSoftware 14 321 826 478 mWsHardware 90 404 0.8 mWs
Public Key Cryptography: Simulation results for a single elliptic curve point multiplication (B233);
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
• Dual Crypto Support:Secret Key Cryptography: Advanced Encryption Standard (128bit)Public Key Cryptography: Elliptic Curve Cryptography (233 bit)
• Dual InterfacePCMCIACardbus
• Characteristics
Dual2 Crypto Chip
AES (128bit) ECC (233bit) Throughput @33Mhz 42Mbit/sec 0.85 Mbit/secPower consumption @33MHz 9,59 mW 56,85mWComplexity KGates 14.44 27.26Rate (clock cycles) 100 9000 Size (mm2 @ .25µ Technology) 1.01 mm2 2.11
IT-Symposium 2005
www.decus.de 12
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Integration of the Dual2 Crypto Chip (D2C2)
Application
PLASMA Payment Privacy
Gen. PurposeProcessor
Dual2 Crypto Chip
JVM IHP Security Provider
C/ASSEM
Java
HW
JCE
JNI
Benefits of the CoDesign Architecture:
• Transparent use of D2C2 by anyapplication on top of JCE
• Self configuration of Securityimplementation
• Transparent integration of D2C2 intodevice architecture
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Conclusions & Research Challenges Ahead
• Current situationTechnical means to protect communication are availableBUT: data given away still cannot be controlledBUT: High security level and long up times are still contradicting
• Sensor Networks & RFID technology are worsening the situationDirect recording of data (sensor measuring parameters of the user)Indirect recording e.g. groceries are tagged and gather data
• Open issuesManagement of security setting of mobile devicesFirewall protection on the mobile device
IT-Symposium 2005
www.decus.de 13
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
If everything works fine:
+
=Bakerstreet
• Advertisement for new violin received on handheld• No personal information provided
• Bus taken to go home • Handheld is still running
• Tobacco for pipe bought; paid using handheld • No personal information provided
+ Access to location information denied
Access to location information denied
?IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2005 - All rights reserved
Thank you for your attention!
Questions or Comments?
AcknowledgementsThis work was partially supported by the bmb+f (ministry of education and research) under grant 01AK060B.